Best practices for email security?
-
I just read that some vulnerability exposed “millions” of Gmail users. I just read the title so please don’t ask for details. But, it got me thinking about our CR mail servers. How can we best protect them?
From the user side, I was thinking that if we use thunderbird to archive emails and delete them from the server then that would lessen the risk in case of a breach.
@girish you have this setup so your two cents are much appreciated.
-
But makes it impossible to access any mail form your mobile device, tablet or any other computer. No?
-
But makes it impossible to access any mail form your mobile device, tablet or any other computer. No?
@Stardenver If you mean browsing through the archived mail, then yes, I suppose that's the downside of it.
-
I just read that some vulnerability exposed “millions” of Gmail users. I just read the title so please don’t ask for details. But, it got me thinking about our CR mail servers. How can we best protect them?
From the user side, I was thinking that if we use thunderbird to archive emails and delete them from the server then that would lessen the risk in case of a breach.
@girish you have this setup so your two cents are much appreciated.
@humptydumpty said in Best practices for email security?:
I just read that some vulnerability exposed “millions” of Gmail users. I just read the title so please don’t ask for details. But, it got me thinking about our CR mail servers. How can we best protect them?
This „breach“ has nothing to do with Google.
However, as the company explained in a series of posts on Monday, Gmail did not suffer a breach, and the compromised accounts were actually from a compilation of credentials stolen by information-stealing malware and other attacks over the years.
…
"The inaccurate reports are stemming from a misunderstanding of infostealer databases, which routinely compile various credential theft activity occurring across the web. It's not reflective of a new attack aimed at any one person, tool, or platform."So before you take measures that effectively render mail unusable (POP3), rather enable the usual security measures (Passkey, 2FA, a decent password manager, etc.) and you should be ok as an average person.
